$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa File: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (raw, json) Hash identifier: cxXcs5+F77Lg7/Ojwbw2WUqjYrzsnoyA2M5AF3WeU8k= Subject key identifier: 51:50:B5:4D:74:A8:BC:9D:62:A8:1D:D3:07:3A:A1:DC:11:AE:09:54 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 0FFF0DCA20F8F63B858C46648F45EAEB80FCEDF1 Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa Signing time: Wed 14 Aug 2024 11:32:58 +0000 ROA not before: Wed 14 Aug 2024 11:27:58 +0000 ROA not after: Wed 13 Aug 2025 11:32:58 +0000 asID: 153101 IP address blocks: 160.25.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ff:0d:ca:20:f8:f6:3b:85:8c:46:64:8f:45:ea:eb:80:fc:ed:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Aug 14 11:27:58 2024 GMT Not After : Aug 13 11:32:58 2025 GMT Subject: CN=5150B54D74A8BC9D62A81DD3073AA1DC11AE0954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:6a:e7:6b:5e:bf:9e:04:27:ed:70:0f:8c: 2b:b6:02:f0:33:a0:07:5d:17:ff:cc:b5:7f:31:d1: 74:fd:28:bd:02:a7:c1:ac:aa:93:01:1f:41:31:47: 08:06:77:ae:31:0e:8b:66:75:aa:4d:eb:8a:fe:50: 4e:21:8e:44:d1:80:5e:c5:a7:7c:6a:78:49:c3:20: 56:7c:5e:f1:bc:f2:d2:e2:ce:b7:9b:99:d9:3c:c0: 4f:fa:b7:c9:44:d3:5f:c9:38:4f:bf:64:13:15:98: 40:ae:b7:9b:50:7d:2c:c0:4d:7c:a6:e8:08:b2:86: 3d:78:26:a4:53:79:13:a8:48:8e:76:94:05:3b:47: be:d8:12:b8:d1:ac:e5:9b:df:52:c4:b3:50:8a:00: 6c:23:fe:67:43:da:8a:1e:ea:96:b4:11:7b:4c:4c: 3f:6e:96:98:be:a3:f5:1b:18:ac:c4:0e:2c:1e:8c: e0:a0:f6:ca:dd:0b:62:be:d7:0a:7b:5d:0d:fd:6d: bb:32:73:ea:f3:3a:20:01:20:2c:d8:08:ec:f2:18: 74:46:47:61:fc:7f:fc:64:4f:6d:fb:16:e1:df:c4: 40:2c:22:0f:16:40:ba:aa:f2:87:a9:c7:96:c9:4b: 1d:00:0e:c1:40:1c:24:0b:76:e4:28:98:ba:3f:44: e7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:50:B5:4D:74:A8:BC:9D:62:A8:1D:D3:07:3A:A1:DC:11:AE:09:54 X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.152.0/24 Signature Algorithm: sha256WithRSAEncryption 18:7d:d8:d2:0e:7a:a4:4e:ec:68:be:56:89:a2:5b:69:e9:cb: d0:8b:f5:53:25:18:f1:f2:e9:02:20:17:5d:33:0f:d3:be:62: 54:ab:09:02:9b:99:f6:52:5c:73:85:e9:ff:75:44:d5:de:8f: 79:3b:c0:73:2d:7d:28:34:6b:f4:67:71:69:9a:0e:ab:d7:9c: 73:3e:46:8d:02:8e:d9:cc:92:e7:37:9d:d7:69:de:e6:81:2d: f6:77:18:8d:a9:40:9f:36:0b:9f:7b:2b:7a:4b:c9:b1:28:a1: 7e:a4:c9:46:1b:86:0e:4e:23:52:65:08:6d:ef:8e:04:00:e2: 9a:9f:30:e0:b4:01:71:be:ce:c0:d4:92:ca:5e:db:31:0e:ce: 67:17:49:84:ca:61:d7:85:ea:df:5e:78:1e:b2:8b:aa:39:d8: 59:1a:36:92:e2:e8:75:ff:be:0d:9c:f4:e9:8c:22:c7:f4:ab: a3:f8:5b:5f:ed:e7:93:7d:e4:9d:ae:99:bf:3d:46:2e:6a:19: 64:02:31:a1:2f:d4:fc:21:f9:3d:c6:7b:87:04:29:4e:e7:d5: 81:4d:d2:15:16:27:da:fc:aa:3b:3d:82:ec:ce:df:e7:3c:cf: 78:f7:47:89:f6:68:2a:b4:fb:a9:17:ad:58:7f:0c:1d:50:77: 60:1b:83:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD/8NyiD49juFjEZkj0Xq64D87fEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNDA4MTQxMTI3NThaFw0yNTA4MTMxMTMyNThaMDMxMTAvBgNV BAMTKDUxNTBCNTRENzRBOEJDOUQ2MkE4MUREMzA3M0FBMURDMTFBRTA5NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQLGrna16/ngQn7XAPjCu2AvAz oAddF//MtX8x0XT9KL0Cp8GsqpMBH0ExRwgGd64xDotmdapN64r+UE4hjkTRgF7F p3xqeEnDIFZ8XvG88tLizrebmdk8wE/6t8lE01/JOE+/ZBMVmECut5tQfSzATXym 6Aiyhj14JqRTeROoSI52lAU7R77YErjRrOWb31LEs1CKAGwj/mdD2ooe6pa0EXtM TD9ulpi+o/UbGKzEDiwejOCg9srdC2K+1wp7XQ39bbsyc+rzOiABICzYCOzyGHRG R2H8f/xkT237FuHfxEAsIg8WQLqq8oepx5bJSx0ADsFAHCQLduQomLo/ROcfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUVC1TXSovJ1iqB3TBzqh3BGuCVQwHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2Y2QwMzI1LTMxYWYtNGZmZS04 YmViLWU3Nzk5N2U2YzNlMS8wLzMxMzYzMDJlMzIzNTJlMzEzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmYMA0GCSqG SIb3DQEBCwUAA4IBAQAYfdjSDnqkTuxovlaJoltp6cvQi/VTJRjx8ukCIBddMw/T vmJUqwkCm5n2Ulxzhen/dUTV3o95O8BzLX0oNGv0Z3Fpmg6r15xzPkaNAo7ZzJLn N53Xad7mgS32dxiNqUCfNgufeyt6S8mxKKF+pMlGG4YOTiNSZQht744EAOKanzDg tAFxvs7A1JLKXtsxDs5nF0mEymHXherfXngesouqOdhZGjaS4uh1/74NnPTpjCLH 9Kuj+Ftf7eeTfeSdrpm/PUYuahlkAjGhL9T8Ifk9xnuHBClO59WBTdIVFifa/Ko7 PYLszt/nPM9490eJ9mgqtPupF61YfwwdUHdgG4Nj -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:50 2024 by rpki-client on console-ams.rpki-client.org